Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-21868

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00639EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-17001

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00266EPSS
Exploits0References2
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions Listadded 2025/07/23 9:37 p.m.5 views

rsblog

Extension: RSBlog! Version: Old 1.14.4, 1.14.5 / New 1.14.6 Update details: Versions affected 1.11.6 to 1.14.5 Stored XSS allows remote authenticated attackers to inject arbitrary web script or HTML via the tag parameter. Fixed in 1.14.6 Update URL:...

5.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/07/20 9:59 a.m.4 views

CVE-2025-50126

A stored XSS vulnerability in the RSBlog! component 1.11.6-1.14.5 Joomla was discovered. The issue allows remote authenticated users to inject arbitrary web script or HTML via the jformtagstext parameter...

5.3CVSS5.5AI score0.00639EPSS
Exploits0References1
NVD
NVDadded 2025/07/18 10:15 a.m.2 views

CVE-2025-50126

A stored XSS vulnerability in the RSBlog! component 1.11.6-1.14.5 Joomla was discovered. The issue allows remote authenticated users to inject arbitrary web script or HTML via the jformtagstext parameter...

5.3CVSS0.00639EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/18 9:51 a.m.7 views

CVE-2025-50126 Extension - rsjoomla.com - Stored XSS vulnerability RSBlog! component 1.11.6-1.14.5 for Joomla

A stored XSS vulnerability in the RSBlog! component 1.11.6-1.14.5 Joomla was discovered. The issue allows remote authenticated users to inject arbitrary web script or HTML via the jformtagstext parameter...

5.3CVSS5.1AI score0.00639EPSS
Exploits0References1
CVE
CVEadded 2025/07/18 9:51 a.m.18 views

CVE-2025-50126

CVE-2025-50126 describes a stored XSS vulnerability in RSBlog! for Joomla, affecting versions 1.11.6–1.14.5. The issue arises from improper handling of the jform[tags_text] parameter, allowing remote authenticated users to inject arbitrary web script or HTML. Multiple connected sources corroborat...

5.3CVSS5.2AI score0.00639EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/18 9:51 a.m.7 views

CVE-2025-50126 Extension - rsjoomla.com - Stored XSS vulnerability RSBlog! component 1.11.6-1.14.5 for Joomla

A stored XSS vulnerability in the RSBlog! component 1.11.6-1.14.5 Joomla was discovered. The issue allows remote authenticated users to inject arbitrary web script or HTML via the jformtagstext parameter...

5.3CVSS0.00639EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/07/18 12:0 a.m.1 views

PT-2025-30027 · Joomla +1 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: RSBlog! versions 1.11.6 through 1.14.5 Description: A stored cross-site scripting XSS issue exists in the RSBlog! component for Joomla. The issue allows remote authenticated users to inject arbitrary web script or HTML code via the jformtags...

5.3CVSS5.4AI score0.00639EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/07/18 12:0 a.m.1 views

RSJoomla! RSBlog! component for Joomla 跨站脚本漏洞

RSJoomla! RSBlog! component for Joomla is an extension component for the Joomla content management system from RSJoomla! A cross-site scripting vulnerability exists in RSJoomla! RSBlog! component for Joomla versions 1.11.6 through 1.14.5, which stems from improper handling of the jform tagstext...

5.3CVSS5.9AI score0.00639EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/06/07 2:6 p.m.10 views

CVE-2025-27754

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affecte...

6.5CVSS6AI score0.00266EPSS
Exploits0References1
NVD
NVDadded 2025/06/05 2:15 p.m.9 views

CVE-2025-27754

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affecte...

6.5CVSS0.00266EPSS
Exploits0References1
OSV
OSVadded 2025/06/05 2:15 p.m.2 views

CVE-2025-27754

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affecte...

6.5CVSS5.8AI score
Exploits0References1
Cvelist
Cvelistadded 2025/06/05 1:20 p.m.10 views

CVE-2025-27754 Extension - rsjoomla.com - A stored XSS vulnerability RSBlog! component 1.11.6 - 1.14.4 for Joomla

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affecte...

0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/06/05 1:20 p.m.7 views

CVE-2025-27754 Extension - rsjoomla.com - A stored XSS vulnerability RSBlog! component 1.11.6 - 1.14.4 for Joomla

A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Joomla was discovered. The vulnerability allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when other users view the affecte...

5.7AI score0.00266EPSS
Exploits0References1
CVE
CVEadded 2025/06/05 1:20 p.m.54 views

CVE-2025-27754

CVE-2025-27754 : A stored XSS flaw affects RSBlog! component for Joomla, versions 1.11.6–1.14.4. The root cause is insufficient input cleanup, allowing an authenticated user to inject JavaScript into the plugin’s resource; the payload is stored and later executed when other users view the affecte...

6.5CVSS6.1AI score0.00266EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2025/06/05 12:0 a.m.1 views

PT-2025-23925 · Rsblog! · Rsblog!

Name of the Vulnerable Software and Affected Versions: RSBlog! component versions 1.11.6 through 1.14.4 Description: A stored XSS issue allows authenticated users to inject malicious JavaScript into the plugin's resource. The injected payload is stored by the application and later executed when...

6.5CVSS5.6AI score0.00266EPSS
Exploits0References7
CNNVD
CNNVDadded 2025/06/05 12:0 a.m.1 views

RSJoomla! RSBlog! 跨站脚本漏洞

RSJoomla! RSBlog! is a blog management tool from RSJoomla! A cross-site scripting vulnerability exists in RSJoomla! RSBlog! versions 1.11.6 through 1.14.4, which stems from insufficient input cleanup and could lead to a stored cross-site scripting attack...

6.5CVSS5.9AI score0.00266EPSS
Exploits0References2
Rows per page
Query Builder